Network config help

A

AlpineLemming60

Well-Known Member
Joined
Jun 1, 2007
Messages
319
Reaction score
100
Hope this is posted in the correct section.

Need advise to convert a workgroup of 10 pcs to a domain network. Currently, the internet is running of a 3G router as telkom lines are very problematic. Email is hosted by ISP so no need for exchange within the domain.

Was thinking about a rack mount HP DL380 for basic function - AD, DC, etc and getting a NAS for backup (keeping data offsite). Will play around with something like pfsense to monitor internet requests

Will i need something like dyndns seeing that i dont have a fixed iP from the ISP ?

Any advice on the setup ?
 
Why would you need a fixed IP? Or dynamic domain for that matter?

Why even bother if it's only 10 PC's unless you project a major increase in users shortly.

There's no special network configuration difference for running AD.
 
Basically what ^ he said.

Only time you need a dynDNS hostname is if you need access from outside the network, then yes you can use a dynamic dns service to handle this.
 
Defintely no web service, etc needed for the near future.

I guess dyndns would be needed if vpn access would be needed, right ?

Also, any thoughts on letting the 3G router do the dhcp ? Its a cheap alternative, i guess
 
nitesh said:
Defintely no web service, etc needed for the near future.

I guess dyndns would be needed if vpn access would be needed, right ?

Also, any thoughts on letting the 3G router do the dhcp ? Its a cheap alternative, i guess
Click to expand...

Yes, for VPN you would need it.

Regarding DHCP it all depends on what you end up doing. You mentioned something about pfSense, I'm not sure where you are planning to put that into your network. Essentially you could do DHCP on any of them (the pfSense box, the DC or the router). I would centralise all network stuff on the router though.

I would set it up like this though:

3G -> Pfsense -> DC

Use the 3G only for the connection and do all routing and DHCP on the pfSense box. A better picture of what you plan to do may help.
 
basically, user access to the network needs to be centralized, along with data backup, and user backup. VIP Payroll is split between three separate users computer at the moment, so centralizing that will be beneficial.

I was thinking about a pfsense box for filtering internet traffic (restricting facebook, etc if needed) - but I know it can be a pain to setup so I might be asking for trouble here ! Will also look at the 3G router to see if it has any filtering capabilities
 
I wouldn't do DHCP on the 3G because that's the thing most likely to change in the near future and then you have to reconfigure it all.

So if you are doing PFSense use that for all your networking.

Otherwise leave PFsense out of and do it all on the DC.

Other options are Untangle instead of PFsense or skipping Windows completely and going with Zentyal.

http://www.zentyal.org

If you are comfortable with PFsense you'll probably be even more comfortable with Zentyal and you can do your AD-like user management from there as well.

You don't need Windows when using Pastel in a client only sense if the data is just stored centrally.
 
Last edited:
The question would be how strict do you want the policies to be? I wouldn't use AD for that amount of users, unless you really have to lock down shares with allot of user rights.

Windows server is expensive, and very nice, but for couple of users sharing few things a total overkill.

I would get a 3g router. Ask for unrestricted access off the service provider, and register a dyndns username, and connect it to the router.
I would go for a Netgear or Billion router, you can block websites with that. If you need a fancier solution, i would get Untangle machine in place of the router. I would install 3g dongle straight into the linux machine and use pppoe to connect the wan port. This would be also my choice if you need to create a vpn solution to the network. (For remote users)

I would buy a HP micro server for storage on the network. ill create shares for vip, pastel, and what ever programs you need on the hp, and share to everyone.

If need be, setup routes for rdp, or get team viewer or log me in installed, and you cam support remotely.

Ill ask the firewall or router to dish out ip's, and leave the first 50 open for network printers, switches an wifi routers etc.

Give all the same workgroup name, and use the same dns server. (Local dns)

If you have a copy os ms server, and you have a machine with 2 nic's, then get n small 3g roter (that R300 buck tp link ones) and setup AD, RRAS, DNS, DHCP and share a few folders for the programs. From 2003 version can do all of the above!

For backup use a nas device hidden somewhere in a diffrent building, or setup backup to removable drives which someone cycle and take offsite
 
I dont like Vodacom that much, but i would start with such a sim, then register the web app to see data usage, also go to vtime website, and setup that to transfer extra bundles to the sim, this you can monitor and up the bundles without going to the router/removing the sim etc.

Mtn work nearly the same way, but you need to call to add more bundles, so the vodacom route is easier, and can be managed from a tablet or other web client.
 
excellent suggestions - much appreciated !

Payroll will be setup on the server so the clients connect that way.

There is none user control in terms of shared data at the moment. So AD will help, once a shared space is created and restricted accordingly.

Client wants to get a rack mount server, so i suggested the DL380 - Priced at 18k for a pretty much all in one with 8G ram and 2 TB disk space + 5k for Server 2012 essentials. Plan to get a HP Microserver in a few months for offsite backup (cos you can never be sure)
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X